Continuous monitoring strategy planning

October 2010

At a glance

PwC's report discusses how agencies need to develop monitoring strategies, tailored to the specific needs of their organization, to effectively address the requirements and expectations of Federal regulatory agencies.

Information systems and the environments in which they reside are inherently dynamic and are constantly changing. These changes are driven by many factors, including the organization’s mission, user requirements, technological advancements, and maintenance needs. Security risks continually evolve and challenge federal agencies to look for ways to proactively identify, evaluate, and manage system risks.